Setting auth_request based on request method

I appreciate this isn't technically related to Phalcon, but I'm hoping someone here might know the answer to this.

I've implemented auth_request for a set of micro services I'm currently building and very much like this feature.
I am, however, having a bit of an issue with specifying what calls need the auth request based on the request method.

For example, I need to try and set up the following:

GET /object - NO auth needed

POST /object - auth needed

PATCH /object - auth needed

I've normalised the endpoints for the sake of this example and there are more endpoints but this should be enough to explain the scenario.